Annotation of src/usr.bin/passwd/passwd.c, Revision 1.24
1.24 ! cloder 1: /* $OpenBSD: passwd.c,v 1.23 2006/01/22 06:04:28 biorn Exp $ */
1.4 deraadt 2:
1.1 deraadt 3: /*
4: * Copyright (c) 1988 The Regents of the University of California.
5: * All rights reserved.
6: *
7: * Redistribution and use in source and binary forms, with or without
8: * modification, are permitted provided that the following conditions
9: * are met:
10: * 1. Redistributions of source code must retain the above copyright
11: * notice, this list of conditions and the following disclaimer.
12: * 2. Redistributions in binary form must reproduce the above copyright
13: * notice, this list of conditions and the following disclaimer in the
14: * documentation and/or other materials provided with the distribution.
1.16 millert 15: * 3. Neither the name of the University nor the names of its contributors
1.1 deraadt 16: * may be used to endorse or promote products derived from this software
17: * without specific prior written permission.
18: *
19: * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
20: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
21: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
22: * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
23: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
24: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
25: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
26: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
27: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
28: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29: * SUCH DAMAGE.
30: */
31:
32: #ifndef lint
33: char copyright[] =
34: "@(#) Copyright (c) 1988 The Regents of the University of California.\n\
35: All rights reserved.\n";
36: #endif /* not lint */
37:
38: #ifndef lint
1.11 millert 39: /*static const char sccsid[] = "from: @(#)passwd.c 5.5 (Berkeley) 7/6/91";*/
1.24 ! cloder 40: static const char rcsid[] = "$OpenBSD: passwd.c,v 1.23 2006/01/22 06:04:28 biorn Exp $";
1.1 deraadt 41: #endif /* not lint */
42:
43: #include <stdio.h>
1.17 david 44: #include <stdlib.h>
1.1 deraadt 45: #include <string.h>
46: #include <unistd.h>
1.12 millert 47: #include <err.h>
1.20 deraadt 48: #include <rpcsvc/ypclnt.h>
1.1 deraadt 49:
1.23 biorn 50: #if defined(KRB5)
51: #include <sys/stat.h>
52: #endif
53:
1.1 deraadt 54: /*
55: * Note on configuration:
56: * Generally one would not use both Kerberos and YP
57: * to maintain passwords.
58: *
59: */
60:
61: int use_kerberos;
62: int use_yp;
63:
64: #ifdef YP
65: int force_yp;
66: #endif
67:
1.9 millert 68: extern int local_passwd(char *, int);
1.6 weingart 69: extern int yp_passwd(char *);
1.10 hin 70: extern int krb5_passwd(int, char **);
1.14 hugh 71: extern int _yp_check(char **);
1.15 deraadt 72: void usage(int retval);
1.6 weingart 73:
74: int
1.15 deraadt 75: main(int argc, char **argv)
1.1 deraadt 76: {
77: extern int optind;
1.15 deraadt 78: char *username;
1.13 mpech 79: int ch;
1.14 hugh 80: #ifdef YP
1.1 deraadt 81: int status = 0;
1.14 hugh 82: #endif
1.23 biorn 83: #if defined(KRB5)
84: char *ccfile;
85: struct stat sb;
86:
87: if (!(ccfile = getenv("KRB5CCNAME")))
88: if (asprintf(&ccfile, "/tmp/krb5cc_%u", (unsigned)getuid()) ==
89: -1)
90: errx(1, "out of memory");
1.15 deraadt 91:
1.23 biorn 92: if ((stat(ccfile, &sb) == 0) && (sb.st_uid == getuid()))
1.3 tholo 93: use_kerberos = 1;
1.1 deraadt 94: #endif
95: #ifdef YP
96: use_yp = _yp_check(NULL);
1.19 deraadt 97: if (use_yp) {
98: char *dom;
99:
100: yp_get_default_domain(&dom);
101: yp_unbind(dom);
102: }
1.1 deraadt 103: #endif
104:
1.6 weingart 105: /* Process args and options */
1.18 hin 106: while ((ch = getopt(argc, argv, "lyK")) != -1)
1.1 deraadt 107: switch (ch) {
108: case 'l': /* change local password file */
109: use_kerberos = 0;
110: use_yp = 0;
111: break;
1.10 hin 112: case 'K':
1.23 biorn 113: #if defined(KRB5)
1.10 hin 114: /* Skip programname and '-K' option */
1.15 deraadt 115: argc -= 2;
116: argv += 2;
1.10 hin 117: exit(krb5_passwd(argc, argv));
1.15 deraadt 118: #else
1.10 hin 119: errx(1, "KerberosV support not enabled");
120: break;
1.1 deraadt 121: #endif
122: case 'y': /* change YP password */
123: #ifdef YP
124: if (!use_yp) {
125: fprintf(stderr, "passwd: YP not in use.\n");
126: exit(1);
127: }
128: use_kerberos = 0;
129: use_yp = 1;
130: force_yp = 1;
131: break;
132: #else
133: fprintf(stderr, "passwd: YP not compiled in\n");
134: exit(1);
135: #endif
136: default:
1.8 ericj 137: usage(1);
1.1 deraadt 138: }
139:
140: argc -= optind;
141: argv += optind;
142:
143: username = getlogin();
144: if (username == NULL) {
145: fprintf(stderr, "passwd: who are you ??\n");
146: exit(1);
147: }
1.15 deraadt 148:
149: switch (argc) {
1.1 deraadt 150: case 0:
151: break;
152: case 1:
153: username = argv[0];
154: break;
155: default:
1.8 ericj 156: usage(1);
1.1 deraadt 157: }
1.7 art 158:
1.23 biorn 159: #if defined(KRB5)
160: if (use_kerberos)
161: exit(krb5_passwd(argc, argv));
162: #endif
1.1 deraadt 163: #ifdef YP
1.9 millert 164: if (force_yp || ((status = local_passwd(username, 0)) && use_yp))
1.1 deraadt 165: exit(yp_passwd(username));
166: exit(status);
1.24 ! cloder 167: #else
! 168: exit(local_passwd(username, 0));
1.1 deraadt 169: #endif
170: }
171:
1.6 weingart 172: void
1.15 deraadt 173: usage(int retval)
1.1 deraadt 174: {
1.22 biorn 175: fprintf(stderr, "usage: passwd [-K | -l | -y] [user]\n");
1.8 ericj 176: exit(retval);
1.1 deraadt 177: }